Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/gJxz3HWzQHuLp7tFgkRNxHq7ZHE.roa
File:                     gJxz3HWzQHuLp7tFgkRNxHq7ZHE.roa (raw, json)
Hash identifier:          GuUKMoU31D6rxqUlSHtCtDcmiHBCyIq9/6UdSPY/dkw=
Subject key identifier:   80:9C:73:DC:75:B3:40:7B:8B:A7:BB:45:82:44:4D:C4:7A:BB:64:71
Certificate issuer:       /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial:       0240
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/gJxz3HWzQHuLp7tFgkRNxHq7ZHE.roa
Signing time:             Tue 01 Aug 2023 01:28:39 +0000
ROA not before:           Tue 01 Aug 2023 01:28:39 +0000
ROA not after:            Sun 14 Jul 2024 01:30:03 +0000
asID:                     2516
IP address blocks:        14.8.96.0/19 maxlen: 19

Validation:               Failed, certificate revoked on Mon 05 Feb 2024 09:37:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 576 (0x240)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
        Validity
            Not Before: Aug  1 01:28:39 2023 GMT
            Not After : Jul 14 01:30:03 2024 GMT
        Subject: CN=809C73DC75B3407B8BA7BB4582444DC47ABB6471
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:44:a5:b0:83:73:6b:fb:59:d7:21:09:3d:59:
                    0f:26:2c:e4:ce:b1:f1:72:31:05:fd:2d:98:e2:be:
                    d9:8e:ba:77:14:7b:96:de:f7:fb:f2:ff:12:2e:32:
                    70:08:c1:bd:80:6f:7b:c0:85:ed:d4:c5:f2:e2:0a:
                    fa:44:b7:2d:85:4f:62:6b:d1:41:bd:13:40:8b:1c:
                    0b:ee:66:a6:1b:b4:d5:d6:86:e8:7f:04:3c:3a:38:
                    12:84:1c:84:99:b4:41:04:e0:1d:ee:38:4e:c1:63:
                    da:8e:8c:96:17:91:40:53:16:2f:1c:00:13:8d:c7:
                    cd:d8:3b:d0:a6:8e:6b:a5:91:69:35:6f:cc:c8:28:
                    c4:8e:09:34:8c:4e:e8:af:b8:57:8d:97:86:01:bc:
                    1c:45:dc:7e:2c:1e:da:1f:65:fd:cd:af:dc:7b:a7:
                    1b:71:48:75:dc:e0:62:28:f8:7d:ec:1e:ed:4a:21:
                    c5:b7:63:f9:5e:c5:12:80:6b:d8:f3:6a:cc:2e:ec:
                    0e:92:2a:f0:1f:83:33:9e:18:4b:48:20:a3:d0:71:
                    00:1f:88:0c:ec:f9:99:ae:f9:ae:04:b5:e0:6f:81:
                    11:1a:d4:72:c6:0f:83:04:bb:fc:4f:0a:33:0f:29:
                    39:e6:85:a0:b4:47:6f:0f:46:ef:4a:c0:44:68:e4:
                    f7:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:9C:73:DC:75:B3:40:7B:8B:A7:BB:45:82:44:4D:C4:7A:BB:64:71
            X509v3 Authority Key Identifier:
                keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/gJxz3HWzQHuLp7tFgkRNxHq7ZHE.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  14.8.96.0/19

    Signature Algorithm: sha256WithRSAEncryption
         7b:9b:ed:f5:11:1b:84:bc:81:73:71:73:bb:6e:f6:41:eb:97:
         20:75:ea:a2:7d:44:5d:9b:b2:6d:c3:12:3c:42:2e:47:07:fb:
         85:3e:4c:ce:fb:28:c2:10:ec:1d:a7:a4:ab:6e:22:3e:17:9c:
         c3:d3:12:18:3d:78:3f:15:c7:8b:2c:f2:54:91:83:04:a9:be:
         cf:af:19:5b:9e:08:ae:c5:b9:f7:b3:06:58:1f:c0:54:2a:c6:
         45:14:59:9c:08:7c:b1:65:ff:dd:34:0e:72:e2:39:c8:73:37:
         6b:48:50:16:cd:bc:a4:8f:6d:be:b7:37:eb:79:42:cc:7c:46:
         5a:8c:12:c9:aa:24:3a:d8:98:e4:71:f7:09:c3:ec:b6:43:90:
         8d:64:cc:a1:e4:08:70:ca:c7:15:63:7c:74:29:cb:4d:47:1c:
         74:c1:64:08:11:89:01:8c:ec:74:72:b6:3e:68:ca:07:f1:34:
         a7:98:c9:9a:01:99:dd:57:29:5a:f1:07:17:d7:7a:c4:78:f2:
         5a:57:26:43:10:39:f0:a7:0e:e5:35:76:68:b8:5e:2c:07:07:
         38:72:8d:ef:b8:de:c5:e8:39:d0:02:f2:f7:42:c7:80:1a:9e:
         16:f3:67:5d:f8:28:4d:00:93:83:cf:ce:10:da:2c:e7:e1:f6:
         e8:95:49:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:38 2024 by rpki-client on console-ams.rpki-client.org